Course Description

Everyone uses Wi-Fi. However, most people may not have a strong understanding of what the differences are between the available security options, like WPA, WPA-PSK, WPA2, TKIP, AES, etc., and most recently, WPA3. You may even have heard that WEP is supposed to be bad, but you are not be sure how WPA and WPA2 improve on it. Furthermore, because Wi-Fi security started from something very weak, and then was improved in stages, it can be very helpful to trace through the various generations of Wi-Fi security, and thus gain a better understanding of wireless security.

This course explains the motivations for wireless and Wi-Fi security and describes initial attempts with open authentication, WEP-based authentication, WEP encryption, etc. We will then explore the many problems with WEP, its use of keys, etc.; and ways that it can be broken. We’ll then discuss how WPA, as a stopgap measure, addresses some of the issues with WEP and how WPA2 is even more secure. The IEEE 802.1X model, and the difference between PSK and enterprise modes will then be explained. Recent updates with WPA3 will also be discussed. WPA3 introduces a range of security enhancements to Wi-Fi systems.

Who Should Attend

This course is ideal for wireless and telecomm engineers, researchers, and students (advanced undergraduates or graduate students), as well as computer science practitioners, researchers and students, who are interested in understanding:

the directions that Wi-Fi security has taken since the early embarrassment of WEP

how weaknesses in the earlier generations of wireless security, and even WPS, could be exploited

how WPA, WPA2, and their variations work, what is the difference between personal and enterprise modes, etc.

the latest developments with WPA3

The level of instruction is intermediate to advanced.

Pre-requisites: Knowledge of Wi-Fi on the level of the ComSoc Training course, An Introduction to Wi-Fi (offered on 4 October) is helpful. However, a brief review of Wi-Fi will be provided at the beginning of this course.

Instructor

Daniel Wong

President, Daniel Wireless LLC, IEEE WCP

K. Daniel Wong is President of Daniel Wireless LLC, a California-registered company that provides consulting and training in wireless, networking and software. He has over 20 years experience in wireless communications, both in industry and academia. Daniel is also an experienced speaker and teacher, having taught many highly-rated university level courses, industry short courses and tutorials at conferences, to a wide range of students from industry, government and academia. He is a member of the Practice Analysis Task Force that helped create IEEE's WCET certification program, and a co-author and co-editor of "A Guide to the Wireless Engineering Body of Knowledge" (WEBOK). Daniel is also the author of "Wireless Internet Telecommunications" (Artech House, 2004) and "Fundamentals
of Wireless Communication Engineering Technologies" (Wiley, 2012). Daniel graduated with a BSE (with Highest Honors) from Princeton University, and an MSc. and Ph.D from Stanford University, all in electrical engineering.

Learning Objectives

Upon completion of this course, students are expected to understand:

How to think of Wi-Fi systems from a security perspective, including how the different components are put together and work together to protect a Wi-Fi network.

How to design Wi-Fi deployments to optimize usage of security technologies.

The directions in which Wi-Fi security has been maturing as Wi-Fi has been developing.

How to explore Wi-Fi deployments using practical tools, with an understanding of how to use those tools to help examine the operation of the Wi-Fi networks, including security mechanisms.

Course Materials

A copy of the instructor's PowerPoint slides is included. Access to the streaming video recording is provided for 15 business days after the course has been taught. Earn 0.6 IEEE Continuing Education Units for participating and completing the post-course evaluation.

Course materials and WebEx invitations will be emailed to participants at least one business day in advance of the course date.

COURSE CANCELLATION and REFUND POLICY: Requests for online course cancellations must be received 3 business days prior to the course date for a full refund. Once course materials have been shared with a course participant cancellation and refund requests cannot be accommodated.